Afnog 2001 T2 Static Routing Exercise

Download Report

Transcript Afnog 2001 T2 Static Routing Exercise 

Static Routing Exercise
 Unix
network interface configuration
 Cisco network interface configuration
 Static routes
 Default route
 Testing
Classroom Layout
HUB
A
PC
HUB
Router
PC
HUB
Router
PC
HUB
Router
PC
HUB
Router
PC
H
PC
Router
HUB
HUB
I
F
PC
Router
HUB
G
D
PC
Router
HUB
E
PC
Router
HUB
C
B
Router
Router
SWITCH
J
PC
Address Allocation
A
B
213.172.133.96/28
213.172.133.128/28
E
.19
213.172.133.160/28
.21
G
.23
213.172.133.192/28
I
213.172.133.224/28
213.172.133.16/28
C
213.172.133.112/28
.17 .18
.25
.20
213.172.133.144/28
F
.22
213.172.133.176/28
.24
H
.26
SWITCH
D
213.172.133.208/28
J
213.172.133.240/28
Address Allocation
 You
already have an IP address for your
router’s backbone link (A=.17, B=.18, …)
 You have a /28 for your local network (PC
and router connected to hub)
 Allocate your own host addresses from
your local /28 network
Network interface configuration FreeBSD
 configure
interface on Unix host
ifconfig fxp0 inet n.n.n.n netmask m.m.m.m
– fxp0 is interface name
– n.n.n.n is IP address
– m.m.m.m is netmask
Connect PC to router console
 Connect
cable to console port on router,
serial port on FreeBSD box
 Use the tip command to connect your
keyboard and screen to the serial port
 You may have to edit /etc/remote
 See man pages for tip(1) and remote(5)
Network interface configuration Cisco
 configure
backbone interface on cisco
router
conf t
interface ethernet0/0
ip address n.n.n.n m.m.m.m
– ethernet0/0 is interface name
– n.n.n.n is IP address
– m.m.m.m is netmask
 configure
local interface on cisco router
– ethernet0/1
Network interface configuration Cisco
 Cisco
global config should always include:
ip classless
ip subnet-zero
 Cisco
interface config should usually
include:
no shutdown
no ip proxy-arp
no ip redirects
Test connectivity
 PC
can ping local interface of router
 Router can ping PC
 PC cannot ping backbone interface of router
 Router can ping other routers
 PC cannot ping other routers or other PCs
Add default route
 Add
route on PC
route add default g.g.g.g
– g.g.g.g is IP address of gateway (which is on
cisco router)
 Display
forwarding table
netstat -f inet -rn
Test connectivity
 All
PCs can now reach backbone IP address
of own row
 Still can’t reach other rows
– why?
Add static routes to other rows
 On
router, add static routes to other rows
– next hop is backbone interface of other row’s
router
ip route n.n.n.n m.m.m.m g.g.g.g
 Repeat
many times
Test connectivity
 All
routers can reach all PCs
 All PCs can reach all backbone IP
addresses
 All PCs can reach PCs in other rows
 Test with traceroute
Edit FreeBSD /etc/rc.conf
 Don’t
do this on classroom machines
 On production machines, add lines to
/etc/rc.conf to configure network on reboot
hostname="porcupine.tomato.example"
ifconfig_fxp0="inet 192.0.2.5 netmask
255.255.255.224"
defaultrouter="192.0.2.1"
 See
/etc/default/rc.conf for more
information